Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/e9a0a1-1135-495c-869a-70bbc7c0a9a5/1/1-Lbhnm9B4H9NZoASLXKhn2QA6UY.roa
File: 1-Lbhnm9B4H9NZoASLXKhn2QA6UY.roa (raw, json)
Hash identifier: 7tzV0268988DyyDmtS2hVr8MEDpOp2VA7alrSQasdPk=
Subject key identifier: F8:B6:E1:9E:6F:41:E0:7F:4D:66:80:12:2D:72:A1:9F:64:00:E9:46
Certificate issuer: /CN=163d2572180f4b784fb4f2a5ed50e9fe5e6be6a7
Certificate serial: 03A8402B
Authority key identifier: 16:3D:25:72:18:0F:4B:78:4F:B4:F2:A5:ED:50:E9:FE:5E:6B:E6:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fj0lchgPS3hPtPKl7VDp_l5r5qc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/e9a0a1-1135-495c-869a-70bbc7c0a9a5/1/1-Lbhnm9B4H9NZoASLXKhn2QA6UY.roa
Signing time: Sat 01 Jan 2022 12:05:12 +0000
ROA not before: Sat 01 Jan 2022 12:05:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48637
IP address blocks: 91.209.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61358123 (0x3a8402b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=163d2572180f4b784fb4f2a5ed50e9fe5e6be6a7
Validity
Not Before: Jan 1 12:05:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8b6e19e6f41e07f4d6680122d72a19f6400e946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8b:35:29:e9:01:d7:24:87:e0:14:e2:23:c7:
44:f2:e5:fc:c8:a3:7b:7f:c7:94:ca:d3:57:54:18:
b7:eb:77:3c:83:de:6e:4e:18:0a:dc:4f:e4:12:ce:
dd:b0:d7:b1:36:c1:c3:e1:c2:6d:d7:06:7c:07:2f:
3f:fe:e1:28:28:68:cf:a6:93:76:c5:ca:9b:1e:2e:
1e:b4:82:8b:c3:73:98:26:79:93:7b:9a:15:4f:d5:
eb:94:a3:9a:1c:8e:f5:db:ef:48:0e:0a:f6:60:a8:
2b:3b:03:00:c4:9f:c3:d0:d5:00:d7:85:25:ac:91:
78:8d:36:9f:98:2d:9f:1d:3c:03:9f:bc:90:3d:b7:
65:bc:0c:d3:a9:d7:e6:db:21:e0:8f:f3:cc:e1:6c:
53:1b:36:5c:4a:6d:f3:5b:82:d8:29:63:43:23:89:
37:05:24:0e:88:c2:8b:3f:6c:0b:0c:7e:7a:0e:46:
06:3a:93:b9:2c:d0:1a:2f:b3:43:d4:4e:84:39:6a:
40:8b:c5:4d:eb:9a:60:be:c5:20:79:e3:a9:1d:94:
17:38:1c:94:e7:7c:c2:c6:1b:98:b1:cb:ff:e0:9c:
e8:8d:89:c0:1a:a5:cf:64:47:4a:ed:3d:96:b6:35:
1e:0f:6a:bd:f6:ec:51:f4:34:ba:92:de:5d:70:99:
7c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B6:E1:9E:6F:41:E0:7F:4D:66:80:12:2D:72:A1:9F:64:00:E9:46
X509v3 Authority Key Identifier:
keyid:16:3D:25:72:18:0F:4B:78:4F:B4:F2:A5:ED:50:E9:FE:5E:6B:E6:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fj0lchgPS3hPtPKl7VDp_l5r5qc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/e9a0a1-1135-495c-869a-70bbc7c0a9a5/1/1-Lbhnm9B4H9NZoASLXKhn2QA6UY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/e9a0a1-1135-495c-869a-70bbc7c0a9a5/1/Fj0lchgPS3hPtPKl7VDp_l5r5qc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.214.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:88:5f:cf:b4:73:cf:0f:89:a7:74:63:a0:b6:89:2b:20:c4:
a9:ed:de:18:3a:5a:5e:29:0d:b0:19:53:3a:11:b6:f4:54:69:
f2:40:1f:7a:70:5f:a2:aa:ef:7f:e8:8f:d4:cb:ee:7a:a8:22:
cb:36:2c:7a:ce:e1:92:88:a8:40:e4:e6:a2:ad:c7:ba:07:ff:
a1:70:59:f7:e0:07:da:60:c5:05:7e:d0:7e:ad:62:c3:99:3c:
50:73:15:22:d5:0c:64:7b:87:c8:7c:e9:a3:4f:90:db:83:f9:
48:1a:fa:b3:e1:a4:05:9e:e6:16:df:0d:44:54:48:79:d2:e2:
91:a2:6c:6d:08:9c:9a:70:aa:73:3f:3c:e0:68:d9:cf:a8:22:
8c:56:4f:ba:a5:e8:8a:ea:02:37:8a:7c:01:b5:4c:eb:32:03:
14:10:a1:93:b1:15:28:9a:13:59:5f:df:02:99:c8:96:23:76:
a5:9c:2a:5c:bd:de:24:c1:6b:62:2f:1a:d4:8f:fe:0f:e3:78:
28:29:cb:f5:17:42:61:d8:a0:1e:2d:b8:ec:2d:80:54:52:2f:
6a:33:ae:ad:f8:c9:67:f4:c1:ef:64:a7:b4:bd:8b:6b:a9:42:
54:7a:17:d1:e1:b7:eb:3a:24:de:4c:06:a7:85:fe:02:14:2f:
df:dd:a1:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:14 2025 by rpki-client